Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
File: oHEAJhaNhq-46ZnPsqjonFct0vk.mft (raw, json)
Hash identifier: Cic3JX1AN2d1Hjpia0DkDyYe/bC9de/S6qNR7lM2RPs=
Subject key identifier: 4F:B4:C5:1A:76:7A:22:00:6C:40:22:DB:02:48:B3:66:4B:6C:7C:4C
Authority key identifier: A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9
Certificate issuer: /CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9
Certificate serial: 0196767A4E8E94DED0807A41263E1B7958B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
Manifest number: 125A
Signing time: Sun 27 Apr 2025 09:00:49 +0000
Manifest this update: Sun 27 Apr 2025 09:00:49 +0000
Manifest next update: Mon 28 Apr 2025 09:00:49 +0000
Files and hashes: 1: oHEAJhaNhq-46ZnPsqjonFct0vk.crl (hash: oIy41uo/Ykf9RszAiqk2OpeTvkUFG4HPrKaKf57dwNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:4e:8e:94:de:d0:80:7a:41:26:3e:1b:79:58:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9
Validity
Not Before: Apr 27 09:00:49 2025 GMT
Not After : Apr 28 09:00:49 2025 GMT
Subject: CN=4fb4c51a767a22006c4022db0248b3664b6c7c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ec:00:c1:be:7e:a4:f0:26:bf:cd:43:39:ea:
a7:cd:ed:41:d0:61:79:e4:59:f8:6f:39:15:39:88:
87:43:ba:ae:4a:ca:4d:20:47:2c:77:ff:a5:be:07:
e2:35:8a:fd:5f:68:e9:a4:06:8f:eb:45:02:9e:1c:
04:8c:3e:80:72:16:3f:42:9c:ef:a5:fd:2b:a2:bf:
fd:dd:56:d7:6c:99:39:78:f2:93:63:66:8b:f0:4e:
c0:6a:30:57:a0:f9:2e:18:e5:33:ae:fb:9f:79:b1:
00:57:1a:07:e1:2c:7a:f4:6f:ed:89:c2:d5:9a:23:
7f:a4:95:2f:ce:ef:34:ff:ff:e3:16:f1:c8:a1:71:
20:6f:c9:d9:4b:6d:3d:c0:1a:84:3a:01:e0:c5:0f:
38:50:d8:fc:9f:82:a1:dd:ae:24:9e:89:df:ea:9c:
cb:92:36:4f:52:f0:33:68:f8:05:e8:d1:aa:c7:54:
f1:95:7f:e6:30:3f:5f:f6:7f:9b:da:93:69:8d:67:
90:6b:ce:9d:75:c5:a4:40:39:1f:8c:0d:51:f7:eb:
7f:31:2c:b6:13:03:33:b0:5f:88:63:89:9c:a6:1e:
8a:31:84:fb:7a:8b:15:7a:d0:76:e8:84:8c:9a:3a:
44:00:69:31:1b:74:89:17:28:ee:25:b2:44:05:3a:
23:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B4:C5:1A:76:7A:22:00:6C:40:22:DB:02:48:B3:66:4B:6C:7C:4C
X509v3 Authority Key Identifier:
keyid:A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:c0:1f:71:ba:9c:c1:3f:00:5c:49:de:fb:b8:9f:4f:45:58:
6b:db:52:45:93:46:e2:96:8e:c6:81:3a:76:d4:48:65:b2:11:
0c:cb:6f:a5:71:b6:72:de:e4:44:de:c4:71:92:a4:af:ba:eb:
b9:b7:cc:5d:29:d2:48:3a:9c:3a:98:c0:99:77:da:71:71:13:
3e:99:f4:30:c6:f7:d1:8a:86:2f:8e:38:35:3e:52:c7:44:9e:
9a:7f:54:62:0a:4c:d4:71:0b:33:d2:56:d6:97:40:7f:23:8a:
1c:16:8e:5e:aa:7f:3e:16:85:65:af:d9:2f:a2:52:cd:f8:27:
93:3d:4a:a6:83:ac:2e:16:3f:a1:6a:a6:37:6f:23:cd:2c:ab:
40:de:16:15:6c:f0:4c:d1:ce:37:58:fa:37:f8:d2:7b:20:06:
d1:fb:7d:93:94:04:06:77:a5:ca:48:ee:fa:5b:a2:78:f7:e4:
1e:f5:38:0c:1d:a0:cb:bb:09:57:1c:96:68:21:5c:7d:b9:b3:
67:26:8c:04:ae:1e:a2:db:27:83:3b:b4:1f:c2:41:c5:29:87:
1f:d0:a8:ee:e7:7b:eb:21:9c:fb:a1:06:e4:ad:d4:12:24:d6:
21:52:0c:fa:30:6c:eb:7c:e4:e9:fa:28:4c:ff:e7:43:a4:e5:
26:d2:a5:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:12:01 2025 by rpki-client